PCI SSC Publishes Updated SAQs for PCI DSS v4.0
Sub-Title Here
New SAQ D Requirements for Merchants
The Payment Card Industry Security Standards Council (PCI SSC) has released the Self-Assessment Questionnaires (SAQs) for PCI DSS version 4.0. These updated SAQs include new requirements for merchants completing the SAQ D.
The PCI DSS v4.0 SAQ D is designed for merchants that process less than 1 million transactions per year and do not store cardholder data on their systems. The new requirements for this SAQ include:
- Requirement to implement additional security controls, such as multi-factor authentication and encryption of cardholder data.
- Requirement to complete a more detailed risk assessment.
- Requirement to submit the SAQ to the PCI SSC for review.
The PCI SSC has also published updated SAQ Instructions and Guidelines, which provide information about all PCI DSS v4.0 SAQs, including the new SAQ D.
Merchants that are required to complete a PCI DSS SAQ are encouraged to review the new requirements and update their security controls accordingly.
Komentar